[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

DNSSEC and ISPs faking DNS responses

On 14 Nov 2015, at 16:27, Owen DeLong wrote:

> Today.

Yes, today, and tomorrow, and next week, and next month, and next year, 

> Why on earth do you assume that this will not continue to expand 
> and/or accelerate its rate of expansion as word spreads that it is 
> possible?

Because it isn't a simple default.

If it ever becomes a simple default, we'll start to see greater 
adoption.  And probably not in the form of 'tunneling-everything' VPNs, 
but 'application VPNs' which automagically utilize SSL/TLS

Roland Dobbins <rdobbins at arbor.net>